6 must read tips for la distributors on network penetration testing (slideshare)
TRANSCRIPT
6 Must Read Tips for LA Distributors
on Network Penetration Testing
Courtesy of FPA Technology Services, Inc.
http://www.TechGuideforLADistributors.com
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Theft, control, and sabotage
are all motivations for
attackers seeking to
exploit “attack paths”
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
leading them to your
data assets, your bank
accounts and your system
super-user privileges
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
This situation calls for
a different approach
to IT security
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Network penetration testing
does this by starting from
the position of a hacker
or saboteur
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
seeing your Los Angeles
distribution company without
making assumptions
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
1. Prioritize with the Business
Data Owners
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
2. Do It Inside and Out
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Threats exist on both sides of
your organizational perimeter:
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
• External pentests mimic
the tactics of anonymous
attackers coming in
over the Internet
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
• Internal pentests gauge
potential risk due to
employees, service
providers, and visitors
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
3. Run Network Penetration
Testing at the Right Times
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Some events or changes
can also trigger a requirement
for extra pentests:
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
• New IT/network equipment
or software
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
• Major modifications
or upgrades to computing
or networking installations
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
• Office moves or new offices
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
• Upgrades to security
technology
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
• Changes to end-user
access profiles and
permissions
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
4. Get the Necessary
Permissions
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Testing under normal business
conditions and simulating
surprise hacking needs
two things:
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
• Appropriate authorization
from those empowered
to give it (i.e. CEO and
department heads)
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
• A predefined (and
pretested) security incident
response plan to properly
recover from any test
impacts
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
5. Prioritize Fixes
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
6. Consider Specialist
Assistance
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Has your Los Angeles
distribution company
conducted network
penetration testing?
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Do you have any
additional tips?
Sponsored by http://www.TechGuideforLADistributors.com
Craig PollackFounder & CEO
Please share your thoughts
in the Comments box below
Copyright © FPA Technology Services, Inc.
Learn How to Boost Your Company’s
Productivity with the Right Technology
Download Your Free Guide
How COOs at Los Angeles Distributors
and Manufacturers Get More Done
Now at http://www.TechGuideforLADistributors.com